[Freeipa-users] Fedora 15 IPA Server Upgrade Broke LDAP
Rob Crittenden
rcritten at redhat.com
Mon Mar 19 21:14:30 UTC 2012
Simo Sorce wrote:
> On Mon, 2012-03-19 at 14:57 -0400, Rob Crittenden wrote:
>> Simo Sorce wrote:
>>> On Mon, 2012-03-19 at 11:47 -0500, David wrote:
>>>> After upgrading the IPA server on a Fedora 15 host to
>>>> freeipa-server-2.1.4-3.fc15.x86_64 along with the LDAP dependency of
>>>> 389-ds-base-1.2.10.2-1.fc15.x86_64, the IPA server fails to start due to
>>>> the following error:
>>>>
>>>> Failed to read data from Directory Service: Failed to get list of
>>>> services to probe status!
>>>> Configured hostname 'ipa01.ourdomain.net' does not match any master
>>>> server in LDAP:
>>>> No master found because of error: {'matched': 'dc=ourdomain,dc=net',
>>>> 'desc': 'No such object'}
>>>>
>>>> and IPA shuts down.
>>>>
>>>> Using dbscan to view
>>>> /var/lib/dirsrv/slapd-OURDOMAIN-NET/db/userRoot/id2entry.db4 I can see
>>>> the data is still "there".
>>>>
>>>> Has anyone run into this issue and if so what needs to be done to
>>>> correct it?
>>>
>>>
>>> What 389ds version did you upgrad from (yum history can tell you).
>>>
>>> We have just had another thread with a user that upgraded from a alpha
>>> release of 389ds that should have not been used in production.
>>>
>>> Se the thread named: [Freeipa-users] (no subject)
>>>
>>> (yeah not a great subject :-)
>>>
>>> Simo.
>>>
>>
>> Someone reported this in IRC as well today. The fix was to change
>> DBVERSION to rdn-format-1 and run setup-ds.pl -u -s
>> General.UpdateMode=offline
>
> Rob is this a general issue we need to address, or is it a one off from
> some non-released versions of 389ds to 1.2.10.2 ?
>
> Simo.
>
It is unclear. At least one user that reported this was running an alpha
release of 389-ds.
rob
More information about the Freeipa-users
mailing list